Project

General

Profile

Actions

Bug #5878

open

Reports - view_reports role gives view_hosts role

Added by Ian Tewksbury over 10 years ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Users, Roles and Permissions
Target version:
-
Difficulty:
Triaged:
Fixed in Releases:
Found in Releases:

Description

Do to separation of duty requirements I have the need to grant some users only the ability to view reports and nothing else. I assumed that granting only the role "Reports - view_reports" to those users would accomplish this. Rather granting only that role also appears to grant the same permissions as "Hosts - view_hosts" as well. This is a problem because it exposes the yaml for the hosts which these view report users should not have access too.

I am filing this as a bug because I would assume a role named "Reports - view_reports" should only expose the reports functionality and not other functionality such as viewing the yaml for hosts.


Related issues 1 (1 open0 closed)

Related to Foreman - Bug #3060: Remove YAML host permissions from basic users,New09/09/2013Actions
Actions #1

Updated by Dominic Cleal over 10 years ago

  • Related to Bug #3060: Remove YAML host permissions from basic users, added
Actions

Also available in: Atom PDF